Skip to content

Commit 8457563

Browse files
CVE analysis - Week 1 2026
* Analysis for CVE-2025-40149.yml * Analysis for CVE-2025-40158.yml
1 parent 4c97150 commit 8457563

2 files changed

Lines changed: 16 additions & 0 deletions

File tree

vulns/CVE-2025-40149.yml

Lines changed: 8 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,8 @@
1+
reachability: Local
2+
memory_corruption: true
3+
bug_class: Use-after-free
4+
impact: LPE
5+
privileges_required: false
6+
notes: Use-after-free in ktls code which could lead to LPE.
7+
author: Oracle Corporation
8+
version: v0.1

vulns/CVE-2025-40158.yml

Lines changed: 8 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,8 @@
1+
reachability: Local
2+
memory_corruption: true
3+
bug_class: Use-after-free
4+
impact: LPE
5+
privileges_required: false
6+
notes: Use-after-free in ipv6 code which could lead to LPE.
7+
author: Oracle Corporation
8+
version: v0.1

0 commit comments

Comments
 (0)